CVE-2022-45699 Information

Description

Command injection in the administration interface in APSystems ECU-R version 5203 allows a remote unauthenticated attacker to execute arbitrary commands as root using the timezone parameter.

Reference

https://www.youtube.com/watch?v=YNeeaDPJOBY https://github.com/0xst4n/APSystems-ECU-R-RCE-Timezone